$ rpki-client -vvf rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft File: UyQGWmE9LRB4F5xiFjcczGp3UHo.mft (raw, json) Hash identifier: ZEn+8JUE5hfRKK6MRuL8fVeD2sWm/tJXQdnFbnzUdaU= Subject key identifier: D4:EF:F3:C1:32:9B:D8:75:07:0E:4F:53:51:B7:5E:D7:97:CB:BD:5D Authority key identifier: 53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A Certificate issuer: /CN=A9158EC4/serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft Manifest number: D1 Signing time: Fri 25 Apr 2025 04:43:02 +0000 Manifest this update: Fri 25 Apr 2025 04:43:01 +0000 Manifest next update: Fri 02 May 2025 04:43:01 +0000 Files and hashes: 1: UyQGWmE9LRB4F5xiFjcczGp3UHo.crl (hash: bp/V/4qVQJclHlbLf2eO2LOxc3xBA6YPSPqh170FXww=) 2: 2805F2D6E5B511EEB34EF35AC4F9AE02.roa (hash: zp7wo3Fj7A9LYP7fJX6ClUApusAEuTaZ5MvWnQx4l4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:43:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158EC4, serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Validity Not Before: Apr 25 04:43:01 2025 GMT Not After : May 2 04:43:01 2025 GMT Subject: CN=680b12d6-38b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ce:93:c1:04:36:1c:c4:69:ac:2e:e4:20:af: 66:5a:5a:3e:ff:6b:14:d9:59:e0:7e:9e:ad:76:df: 3b:56:ba:07:5a:d7:b2:ef:b3:e2:c9:86:d5:05:9a: 49:58:1c:4c:8c:ef:99:15:de:c5:a2:8e:a6:ef:02: ec:4b:5d:ed:96:79:41:f0:7f:75:dd:ba:0c:f7:5e: 5c:aa:47:ce:3c:90:bf:dd:78:6f:cb:09:1f:23:66: 0e:63:34:10:2c:0a:c2:33:04:db:0a:73:b3:eb:2b: cf:37:b4:8a:45:f1:25:0e:84:c7:b9:13:f1:83:6b: 5c:6d:7a:43:a9:a8:3e:c0:70:dd:6c:5c:1a:3d:0d: 80:44:1c:67:41:f5:25:a0:ab:63:39:4a:b5:f2:49: 3b:71:6c:1c:ae:37:f6:4c:d1:fe:0d:f9:a8:fc:70: de:42:8c:9b:10:17:14:8c:6b:00:f4:af:37:4e:36: ec:85:8c:23:29:98:01:55:ba:ec:82:f5:bf:c4:a2: 38:09:40:ec:e2:3e:f6:9e:a3:11:bd:1f:9c:7a:25: 25:14:96:95:e8:f2:81:14:ce:11:9f:48:9c:cd:db: 75:c8:e2:be:05:27:b1:72:27:f6:1b:45:3a:7e:dc: 33:16:0a:65:f3:88:80:88:ad:d6:de:01:b5:b3:ed: 82:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:EF:F3:C1:32:9B:D8:75:07:0E:4F:53:51:B7:5E:D7:97:CB:BD:5D X509v3 Authority Key Identifier: keyid:53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:32:35:ac:10:20:b6:20:30:7e:d9:3e:27:ef:d8:cf:6c:ec: ab:67:59:0e:03:74:c9:ae:19:43:9e:cc:7b:5f:f5:79:b1:ac: f4:06:53:7d:c7:76:5c:5b:9f:b6:49:65:90:d2:f1:94:87:2f: 91:61:ca:aa:79:6c:05:02:f7:07:cd:13:3f:48:63:0a:37:3f: e7:73:55:07:24:81:db:ad:7e:67:d4:ba:9f:dd:1e:02:66:6b: 0d:4f:df:f4:f5:74:f1:8c:25:9a:ca:a1:1d:20:75:8b:8d:13: 11:42:2d:81:87:df:62:a8:b3:a7:c9:88:51:74:cb:cb:db:ee: 63:72:9d:1b:e4:10:29:c1:38:dd:ca:b3:61:1d:3e:47:9c:2f: e2:f7:c1:08:31:0e:92:b2:ac:9e:94:c5:1b:1e:58:4e:66:4e: 01:5c:b7:ba:84:79:5b:ff:b9:37:45:7d:03:79:41:b8:7e:18: 7f:15:50:20:21:95:6e:cb:1b:e9:2d:fc:cb:17:84:dc:de:c8: 58:30:92:b8:8d:bd:f6:d7:18:f9:82:b9:46:82:f3:8f:8a:32: 04:3e:c9:90:cd:1f:0b:5e:ac:9d:c2:ed:31:8e:63:a9:ac:51: ec:1e:81:b1:8a:e5:9f:bb:38:71:01:97:88:f3:b9:07:05:8f: 94:9e:ea:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFQzQxMTAvBgNVBAUTKDUzMjQwNjVBNjEzRDJEMTA3ODE3OUM2MjE2MzcxQ0ND NkE3NzUwN0EwHhcNMjUwNDI1MDQ0MzAxWhcNMjUwNTAyMDQ0MzAxWjAYMRYwFAYD VQQDEw02ODBiMTJkNi0zOGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6s6TwQQ2HMRprC7kIK9mWlo+/2sU2Vngfp6tdt87VroHWtey77PiyYbVBZpJ WBxMjO+ZFd7Foo6m7wLsS13tlnlB8H913boM915cqkfOPJC/3XhvywkfI2YOYzQQ LArCMwTbCnOz6yvPN7SKRfElDoTHuRPxg2tcbXpDqag+wHDdbFwaPQ2ARBxnQfUl oKtjOUq18kk7cWwcrjf2TNH+Dfmo/HDeQoybEBcUjGsA9K83TjbshYwjKZgBVbrs gvW/xKI4CUDs4j72nqMRvR+ceiUlFJaV6PKBFM4Rn0iczdt1yOK+BSexcif2G0U6 ftwzFgpl84iAiK3W3gG1s+2ChQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTv88Ey m9h1Bw5PU1G3XteXy71dMB8GA1UdIwQYMBaAFFMkBlphPS0QeBecYhY3HMxqd1B6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEVDNC80NTA2NDc5MEU1 QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxSQjRGNXhpRmpjY3pHcDNV SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5UUdXbUU5TFJCNEY1eGlGamNjekdwM1VIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEVDNC80NTA2NDc5MEU1QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxS QjRGNXhpRmpjY3pHcDNVSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqMjWsECC2IDB+2T4n79jPbOyrZ1kOA3TJrhlDnsx7X/V5saz0BlN9 x3ZcW5+2SWWQ0vGUhy+RYcqqeWwFAvcHzRM/SGMKNz/nc1UHJIHbrX5n1Lqf3R4C ZmsNT9/09XTxjCWayqEdIHWLjRMRQi2Bh99iqLOnyYhRdMvL2+5jcp0b5BApwTjd yrNhHT5HnC/i98EIMQ6SsqyelMUbHlhOZk4BXLe6hHlb/7k3RX0DeUG4fhh/FVAg IZVuyxvpLfzLF4Tc3shYMJK4jb321xj5grlGgvOPijIEPsmQzR8LXqydwu0xjmOp rFHsHoGxiuWfuzhxAZeI87kHBY+UnuqJ -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:06 2025 by rpki-client